Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/n-oSFXlZnHXnyKCFT88DruklQ7k.roa
File: n-oSFXlZnHXnyKCFT88DruklQ7k.roa (raw, json)
Hash identifier: GZQRCMsEiSh5zRRKqGpuyCru2mKVgCq2Y2NjoLkUmrs=
Subject key identifier: 9F:EA:12:15:79:59:9C:75:E7:C8:A0:85:4F:CF:03:AE:E9:25:43:B9
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018570B07632730B3759A2EA786FF5A332A9
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/n-oSFXlZnHXnyKCFT88DruklQ7k.roa
Signing time: Mon 02 Jan 2023 04:14:50 +0000
ROA not before: Mon 02 Jan 2023 04:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137951
IP address blocks: 213.176.91.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:76:32:73:0b:37:59:a2:ea:78:6f:f5:a3:32:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Jan 2 04:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9fea121579599c75e7c8a0854fcf03aee92543b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:1e:c4:c3:d5:23:74:ee:74:9d:0a:f3:94:3c:
57:33:94:df:97:16:dd:bc:77:b1:e5:fb:eb:a2:01:
e9:c3:89:0c:b0:5f:78:72:00:33:ad:90:aa:70:e5:
be:c4:1c:97:8c:07:02:c6:c5:d6:58:24:5c:c5:39:
23:1c:ce:14:ed:63:90:7d:42:66:ac:06:00:90:33:
7f:59:35:0f:1b:d2:7c:c7:a8:f3:86:04:7f:4c:f4:
08:92:2e:e2:79:8a:48:58:27:44:b3:48:41:3e:5a:
e0:9b:b5:9a:f9:a4:80:1c:1a:b2:56:77:e2:df:92:
39:8f:7f:40:fb:0d:01:81:cd:de:8a:27:0f:89:3b:
94:a4:b7:fd:2f:d4:7c:2e:2e:9a:5f:51:57:48:62:
75:03:6b:66:1b:db:25:40:f5:e9:99:16:8c:60:5b:
e1:c0:db:5f:8e:5b:6a:6f:4a:42:3c:fe:f3:22:10:
5c:ca:30:4b:02:6b:cb:19:f9:38:b8:2a:55:db:e3:
41:9b:4d:8f:41:7e:07:f8:17:06:f0:52:ad:a7:fd:
15:ab:b9:5c:00:b4:47:cd:94:92:7d:af:00:6e:00:
66:19:c1:95:2a:83:c1:a8:f4:6a:cf:f8:81:c1:bb:
06:e0:18:c8:53:07:03:81:ac:b6:56:fd:a9:15:73:
ac:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:EA:12:15:79:59:9C:75:E7:C8:A0:85:4F:CF:03:AE:E9:25:43:B9
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/n-oSFXlZnHXnyKCFT88DruklQ7k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.176.91.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:be:74:5d:7b:81:fb:f5:9a:9c:a4:ca:c5:63:74:b1:04:96:
9d:0c:0d:23:b1:72:08:2a:da:03:bc:02:fb:19:34:af:cc:31:
4f:4b:5c:ca:df:aa:98:61:c4:4f:0f:8f:2f:4c:79:88:db:cc:
92:e2:df:91:20:22:cf:cd:c4:d0:1b:03:58:a9:34:c6:46:d1:
07:ed:fa:a2:67:f9:78:9e:3f:f5:5e:a2:46:44:18:21:09:04:
14:a5:48:c3:aa:56:73:fd:cd:f7:75:a7:24:1a:17:9c:07:fd:
af:34:20:0c:86:27:38:8b:50:6e:b6:db:a6:33:e6:40:83:f3:
58:8c:b6:07:89:46:1b:50:a8:34:f4:36:a0:34:c4:02:56:23:
45:97:27:53:54:19:26:15:b9:17:58:61:b2:10:ac:4e:70:ec:
17:9e:06:f6:ed:c9:8d:75:07:83:6d:0e:12:e3:8d:c5:19:65:
25:31:34:6b:8e:6b:8d:0b:ff:9b:e3:71:c6:bc:e9:79:d2:17:
38:40:dd:9f:ae:ef:34:43:71:3e:fd:46:00:13:ac:7a:a2:31:
e1:22:a8:35:1e:1a:e7:c6:e0:22:fe:91:80:d7:76:c7:24:96:
b9:f8:79:22:f6:4a:43:54:39:5b:38:dc:69:04:f0:98:03:f3:
a8:5d:82:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:30 2024 by rpki-client on console-ams.rpki-client.org